Supply chain
[SC] Supply Chain
Shuffles (Pinterest app) Third-Party Breach (December 2025)
Primary Source ↗Incident Details
In 2025, Shuffles (Pinterest app) experienced a data security incident via a third-party vendor relationship.
The compromised third-party vendor was Mixpanel. Source reporting:
https://breached.company/the-mixpanel-breach-how-a-single-smishing-attack-exposed-millions-of-users-across-8-000-corporate-customers/
Technical Details
- Initial Attack Vector
- Compromise of third-party service provider / vendor relationship
- Vendor / Product
- Mixpanel
- Supply Chain Attack
- ✅ Confirmed third-party / vendor compromise
Timeline
- 2025-12-01 Breach occurred
- 2025-12-01 Publicly disclosed